Hi,
I'm quite new to Mikrotik but I've used a lot of other brands before.
As for today I m using a CR2004-16G-2S+ running RouterOS 7.6, no Bridge interfaces created, only my WAN on SFP2 (Interface list : WAN) and my Network on SFP1 (Interface list : LAN), masquerade on WAN.
Everything works well (6-7Gbit/s to WAN), but the firewall seem to be inactive for some reasons.
I have just created two or three simple rules to try it out but it seem that he is not kicking in.
/ip firewall address-list print
Columns: LIST, ADDRESS, CREATION-TIME
# LIST ADDRESS CREATION-TIME
0 MYLAN 172.16.0.0/16 oct/26/2022 14:24:21
/ip firewall filter print
Flags: X - disabled, I - invalid; D - dynamic
0 chain=input action=drop connection-state="" connection-nat-state="" protocol=icmp src-address=172.16.0.0/16 dst-address=1.1.1.1 in-interface-list=LAN log=no log-prefix=""
1 chain=input action=drop connection-state=invalid,established,related,new,untracked protocol=tcp src-address-list=MYLAN in-interface-list=LAN src-port=53 dst-port=53 log=yes log-prefix=""
2 chain=input action=drop connection-state=invalid,established,related,new,untracked protocol=udp src-address-list=MYLAN in-interface-list=LAN src-port=53 dst-port=53 log=yes log-prefix=""
I can still ping 1.1.1.1 and dig @8.8.8.8 whateverdomain.tld
I tried with full address IP, with CIDR, address and source list etc... I dont get it
Thanks for helping,